RFR 8222805: sun/security/pkcs11/tls/tls12/TestTLS12.java fails with Unsupported signature algorithm: rsa_pss_rsae_sha256
Xuelei Fan
xuelei.fan at oracle.com
Tue Apr 23 20:02:06 UTC 2019
I think "jdk.tls.disabledAlgorithms" is a Security Property, while
"-Djdk.tls.disabledAlgorithms=..." is used to define System Property.
I'm not sure if this update works.
You could put the Security Property update code in the beginning of the
main() method, or the initialize() method which is the 1st code executed
in the main() method.
Xuelei
On 4/23/2019 12:26 PM, Martin Balao wrote:
> Hi,
>
> I'd like to propose a fix for 8222805 [1].
>
> Webrev.00:
>
> * http://cr.openjdk.java.net/~mbalao/webrevs/8222805/8222805.webrev.00/
>
> This issue is similar to 8221271 [2]: jdk.tls.disabledAlgorithms
> property is only read when SSLAlgorithmConstraints class is initialized
> and if this happens before TestTLS12.initialize method is executed,
> RSASSA-PSS algorithm is not disabled. This only reproduces on some
> environments. There are no more properties used in TestTLS12 so I don't
> expect a similar failure to occur.
>
> Thanks,
> Martin.-
>
> --
> [1] - https://bugs.openjdk.java.net/browse/JDK-8222805
> [2] - https://bugs.openjdk.java.net/browse/JDK-8221271
>
More information about the security-dev
mailing list